106 matches found
CVE-2014-2361
Summary (CVE-2014-2361): OleumTech WIO DH2 Wireless Gateway and Sensor Wireless I/O Modules, when BreeZ is used, expose a key management flaw that allows a physically proximate attacker to read the site security key and spoof communication. The issue arises from improper key handling (key managem...
CVE-2014-2362
The CVE-2014-2362 entry concerns OleumTech WIO DH2 Wireless Gateway and Sensor Wireless I/O Modules, which rely on the time64() value from the C library as entropy for the site security key. This cryptographic weakness can allow an unauthenticated or remote attacker to predict the site key and po...
CVE-2014-2360
CVE-2014-2360 affects OleumTech WIO DH2 Wireless Gateway and Sensor Wireless I/O Modules. The root cause is Improper Input Validation (CWE-20) in the DH2 Gateway’s handling of a high battery voltage field in received packets, which could allow remote attackers to cause the gateway radio receiver ...
CVE-2014-2362 OleumTech WIO Use of Cryptographically Weak Pseudo-Random Number Generator
OleumTech WIO DH2 Wireless Gateway and Sensor Wireless I/O Modules rely exclusively on a time value for entropy in key generation, which makes it easier for remote attackers to defeat cryptographic protection mechanisms by predicting the time of project creation...
Intel Wireless Gateway 3.x Default Password (deprecated)
Binary data 4862.prm...
CVE-2001-0618
The CVE-2001-0618 entry concerns the Orinoco RG-1000 wireless Residential Gateway. The vulnerability arises because the device uses the last 5 digits of the SSID as the default WEP key, and since the SSID is transmitted in clear, a remote attacker could determine the WEP key and decrypt RG-1000 t...